Apache OpenOffice (AOO) Bugzilla – Issue 127117
Update OpenSSL in the stable branch to version 0.9.8zh
Last modified: 2022-10-28 12:54:32 UTC
AOO 4.1.2 included a very old version of OpenSSL which has known vulenrabilities. For a minor release it is inconvenient to bring the newer major release but we should at least bring version 0.9.8zh. For this we would need to merge r1722228, r1722238, and r1722239 to the release branch.
Taken by the Security Team
Taken by security team
Restored as a non-security matter. The assignment to security was mistaken.
Created attachment 85675 [details] Minor update patch This would be the change in patch form. While here: the URL for old versions has changed in the OpenSSL site so set a new one that works.
Not suitable for 4.1.4
Committed to branch AOO 4.1.6 with: - r1839347 - r1839357 - r1839422
Accepted for 4.1.6
Already fixed, but I can't set Target Milestone to 4.1.6.
Target 4.1.6 is now available